The ravings of a SANS/GIAC GSE (Compliance & Malware)
For more information on my role as a presenter and commentator on IT Security, Digital Forensics Statistics and Data Mining;
E-mail me: "craigswright @ acm.org".

Dr. Craig S Wright GSE

Followers

My Profile

What is happening

BooksI have a few books and another is on the way for 2012. Firstly, I have to plug the first in the Syngress Series of books on IT Audit. This is a comprehensive compliance hand governance handbook with EVERYTHING (from the high level to the hands on for the expert) to get you started in IT compliance and systems security. The main book is "IT REGULATORY AND STANDARDS COMPLIANCE HANDBOOK". This is the first in a series I have planned and more will follow in time. There will be electronic updates to this book over time to maintain it to a current level over time.

I will be working on co-authoring a book on CIP (Critical Infrastructure Protection) - but more on this later.

On top of this I recycle computers. To do this I take 1.5 to 2 year old corporate lease computers and refurbish them so that they can run the most current programs.

The question is - what do you do to help?

If you do not have the time, have you though about a donation?

This blog has been monetarised. This is where the money goes. By clicking and purchasing on this site, you help Burnside and Hackers for Charity. All monies earned here are split 50/50 between these two charities.

Who I am...or what...

Visitor locations

Tuesday, 2 December 2008

Today there is an uproar in the Australian "Financial Review" titled "Click goes your identity as thieves perfect online scam". This is clearly FUD. Ignorance at its most block headedness.

This is based on a fake Linkedin invite from "Mr James Packer". It was clearly fake as the invite used PBL as the company when Packer had already left.

My view, it was either a test or a recruiter. Either way, I do not refuse many invites. The information is entirely public as far as I am concerned. Between my blogs and other sources, it is there for the taking. So why the uproar. Ignorance. There is a big difference between private and public information. That which is private does not go near the cloud. That which is public is open.

As for the reams of commercially sensitive information - it is there already. There are many "LION" open linkers who have 10's of thousands of connections. So where is the difference.

The treasure troves of information is in effect an online CV. As a consultant I hand mine around with abandon, so I still fail to see the point. Nothing on the site garnishes you with a Credit Card. There is too little information to forge a loan.

Besides, searching will gather about all you could hope to find anyway. A combination of Google and Linkedin gets you all the same information - but without alerting the other person.